A posture condition can be
any one of the following simple conditions: a file, a registry, an application,
a service, or a dictionary condition. One or more conditions from these simple
conditions form a compound condition, which can be associated with a posture
After an initial posture
update, Cisco ISE also creates Cisco-defined simple and compound conditions.
Cisco-defined simple conditions use the pc_ as and compound conditions use pr_
A user-defined condition or a
Cisco-defined condition includes both simple and compound conditions.
Posture service makes use of
internal checks based on antivirus and antispyware (AV/AS) compound conditions.
Hence, posture reports do not reflect the exact AV/AS compound-condition names
that you have created. The reports display only the internal check names of
AV/AS compound conditions.
For example, if you have
created an AV compound condition named "MyCondition_AV_Check" to check any
Vendor and any Product, the posture reports will display the internal check,
that is “av_def_ANY”, as the condition name, instead of "MyCondition_AV_Check".